Product · Niyantrac

The time machine for AWS.

AWS has no native undo. Niyantrac gives your AWS account the button it lacks — continuous backups, full version history, AI-generated change summaries and one-click rollback for IAM, SSO, CloudFront, WAF and Route 53. Deployed inside your own AWS account, so your identity and configuration data never leaves your environment.

View on AWS Marketplace Book a demo

AWS Marketplace AMI In your account data stays put Infinite Control. Zero Chaos. by Cloud.in

AWS records what changed. It can't change it back.

A deleted IAM role, an over-broad SSO permission set, a misconfigured policy — any one can lock out teams, break production, or open a compliance gap, with no built-in way to restore the previous state.

CloudTrail logs activity but can't restore prior state. AWS Config records history but can't one-click roll back IAM and SSO, and has limited Identity Center coverage. AWS Backup doesn't cover IAM or IAM Identity Center configuration at all. Niyantrac adds the missing recovery and governance layer — unifying backup, AI-explained version history, one-click rollback and governance for identity and edge services in a single platform that runs inside your AWS account.

What it does

Backup, version, roll back — and understand every change.

Continuous backups

Automatic, continuous backups of IAM roles, policies, users and groups; IAM Identity Center (SSO) permission sets and assignments; plus CloudFront, WAF and Route 53.

Version history

Full version history of every configuration, with version portability — copy any version to another resource or a new one for testing and rapid setup.

One-click rollback

Restore a deleted IAM role, revert an over-broad SSO permission set, or roll any resource back to a known-good version in seconds. Deleted resources are auto-detected and recoverable.

Governance & access

Policy-based access control (PBAC) with fine-grained, per-user permissions across every module, plus real-time alerts and scheduled monitoring.

Audit-ready evidence

Audit trails and exportable evidence to support SOC 2 and ISO 27001 — turning change history into compliance proof.

Alerts & backups

SMTP email alerts for changes, deletions, scheduled tasks, backups and rollbacks; plus S3 backup of all Niyantrac application data for full recoverability.

AI-powered change analysis

Every change, explained in plain English.

Niyantrac summarises the difference between any two versions — what changed, who changed it, what it affects — and rates severity (Low / Medium / High / Critical). You choose how the AI runs:

No AI

Run fully without any AI involvement.

Bring your own LLM

Connect a self-hosted runtime — Ollama, LM Studio or LocalAI.

AWS Bedrock

Fully managed, AWS-native AI for change analysis.

What Niyantrac protects.

AWS IAM IAM Identity Center (SSO) CloudFront WAF Route 53

Coverage continues to expand. Because Niyantrac is deployed via an AWS Marketplace AMI inside your own AWS account, your identity and configuration data never leaves your environment or region — supporting data-residency and sovereignty requirements out of the box.

Deployment

Runs inside your AWS account.

Deployed as an AMI from AWS Marketplace — attach an IAM role and Niyantrac auto-discovers and syncs your resources. No manual configuration.

AMI · in your account

Delivery method

AmazonLinux 2023

Operating system

t3.medium+

Recommended instance

Backup & Recovery · Governance

Marketplace category

Give your AWS account an undo button.

Find Niyantrac on AWS Marketplace, or book a demo with our team to see rollback and AI change analysis in action.

View on AWS Marketplace

Frequently asked

Questions, answered.

What does Niyantrac protect in my AWS account?

AWS IAM (roles, policies, users, groups) and IAM Identity Center / SSO (permission sets and assignments), plus CloudFront, WAF and Route 53. Coverage continues to expand.

Can I roll back a deleted IAM role or SSO permission set?

Yes. Niyantrac keeps full version history and can restore a deleted role, revert an over-broad policy, or roll an SSO permission set back to a known-good state in seconds.

Is my identity data secure and compliant with data-residency rules?

Yes. Data never leaves your AWS account or region because Niyantrac is deployed via an AMI inside your own environment.

How is Niyantrac different from AWS CloudTrail, Config and Backup?

CloudTrail logs activity but cannot restore prior state; AWS Config records history but cannot one-click roll back IAM and SSO and has limited Identity Center coverage; AWS Backup does not cover IAM or IAM Identity Center configuration. Niyantrac unifies backup, AI-explained version history, one-click rollback and governance in one platform.

Where do I get Niyantrac?

Niyantrac is available on AWS Marketplace, sold by Cloud.in, and deployed as an AMI inside your own AWS account.